chore: add audit comments #163
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -38,13 +38,24 @@ async fn main() -> Result<(), Box<dyn Error>> { | |
| ) | ||
| .unwrap(); | ||
|
|
||
| /* | ||
| I think that this part related to `address_hashes` can be safely removed. | ||
| The example should be as simple as possible. | ||
| */ | ||
|
|
||
| // Retrieve hashed addresses using the `keccak256` method. | ||
| let address_hashes = address_ownership_client | ||
| .get_ownership_proofs() | ||
| .iter() | ||
| .map(|x| keccak256(encode(&[Token::String(x.cex_address.clone())]))) | ||
| .collect::<Vec<[u8; 32]>>(); | ||
|
|
||
| /* | ||
| If I understand correctly, the function `dispatch_proof_of_address_ownership` returns a `Result<(), Box<dyn Error>>`. | ||
| When we call unwrap on the result, it will panic if the result is an error. | ||
| Is that correct? | ||
|
There was a problem hiding this comment. Yes, It is correct. I will modify all error propagation in the async functions. |
||
| */ | ||
|
|
||
| // Dispatch the proof of address ownership. | ||
| // the `dispatch_proof_of_address_ownership` function sends a transaction to the Summa contract. | ||
| address_ownership_client | ||
|
|
@@ -97,9 +108,23 @@ async fn main() -> Result<(), Box<dyn Error>> { | |
| ) | ||
| .unwrap(); | ||
|
|
||
| /* | ||
| I still get the error: | ||
| ``assert_eq` of unit values detected. This will always succeed | ||
| for further information visit https://rust-lang.github.io/rust-clippy/master/index.html#unit_cmp | ||
| `#[deny(clippy::unit_cmp)]` on by defaultclippyClick for full compiler diagnostic` | ||
|
|
||
| I think that, similarly to what you do with `dispatch_proof_of_address_ownership` about, we can remove the `assert_eq` statement. | ||
| Instead, by just calling round.dispatch_solvency_proof().await.unwrap(), it will panic if the result is an error. | ||
|
|
||
| */ | ||
| // Sends the solvency proof, which should ideally complete without errors. | ||
| assert_eq!(round.dispatch_solvency_proof().await.unwrap(), ()); | ||
|
|
||
| /* | ||
| Remove the follwing println statement. | ||
| */ | ||
|
|
||
| // You can also use the `solvency_proof_submitted_filter` method to check if the solvency proof is submitted. | ||
| // println!("{:?}", summa_contract | ||
| // .solvency_proof_submitted_filter() | ||
|
|
@@ -111,6 +136,10 @@ async fn main() -> Result<(), Box<dyn Error>> { | |
|
|
||
| // 3. Generate Inclusion Proof | ||
| // | ||
| /* | ||
| Remove the follwing comment. It seems that what you are doing here is different from what you would do in a production setup. | ||
| */ | ||
|
|
||
| // In a production setup, the CEX should first dispatch the solvency proof to update the Merkle sum tree's root before generating any inclusion proofs. | ||
| // Otherwise, users might distrust the provided `root_hash` in the inclusion proof, as it hasn't been published on-chain. | ||
| let inclusion_proof = round.get_proof_of_inclusion(USER_INDEX).unwrap(); | ||
|
|
@@ -140,6 +169,15 @@ async fn main() -> Result<(), Box<dyn Error>> { | |
|
|
||
| let public_inputs = downloaded_inclusion_proof.get_public_inputs(); | ||
|
|
||
| /* | ||
| Why leaf_hash is public_inputs[0][0] while mst_root is public_inputs[1]? | ||
| Shouldn't public_inputs be a vector with 2 elements? | ||
|
There was a problem hiding this comment. I've overridden summa-solvency/zk_prover/src/circuits/utils.rs Lines 114 to 119 in ffd8259 |
||
| */ | ||
|
|
||
| /* | ||
| I would specify that the balances are the balances of the user on the CEX at `snapshot_time`. | ||
| */ | ||
|
|
||
| // Verify the `leaf_hash` from the proof file. | ||
| // It's assumed that both `user_name` and `balances` are provided by the CEX. | ||
| let user_name = "dxGaEAii".to_string(); | ||
|
|
@@ -151,6 +189,10 @@ async fn main() -> Result<(), Box<dyn Error>> { | |
| generate_leaf_hash::<N_ASSETS>(user_name.clone(), balances.clone()) | ||
| ); | ||
|
|
||
| /* | ||
| This whole conversion seems unnecessary to me. Look at the comment in `Round` | ||
| */ | ||
|
|
||
| // Before verifying `root_hath`, convert type of `proof` and `public_inputs` to the type of `Bytes` and `Vec<U256>`. | ||
| let proof: Bytes = Bytes::from(inclusion_proof.get_proof().clone()); | ||
| let public_inputs: Vec<U256> = inclusion_proof | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -44,6 +44,11 @@ impl SolvencyProof { | |
| } | ||
| } | ||
|
|
||
| /* | ||
| Since we are now using the `MstInclusionProof` only for on-chain verification, | ||
| why don't we replace the data type with something that can be directly consumed by the contract? | ||
| Similar to `SolvencyProof`. | ||
|
There was a problem hiding this comment. We still support off-chain verification using the There was a problem hiding this comment. I think we can set the on-chain verifcation (via the smart contract interface) as standard way to perform the proof of inclusion verification. This is because of the nice UX that it provides + full transparency on the code being executed compared to the other available solutions. Therefore I suggest to remove every dependency that relates to off-chain verification and foucs on the on-chain path. |
||
| */ | ||
| #[derive(Debug, Clone, Serialize, Deserialize)] | ||
| pub struct MstInclusionProof { | ||
| public_inputs: Vec<Vec<Fp>>, | ||
|
|
@@ -66,6 +71,9 @@ pub struct Snapshot<const LEVELS: usize, const N_ASSETS: usize, const N_BYTES: u | |
| trusted_setup: [SetupArtifacts; 2], | ||
| } | ||
|
|
||
| /* | ||
| `timestamp` should be a unix timestamp. Is it enough to use `u64`? | ||
| */ | ||
| pub struct Round<const LEVELS: usize, const N_ASSETS: usize, const N_BYTES: usize> { | ||
| timestamp: u64, | ||
| snapshot: Snapshot<LEVELS, N_ASSETS, N_BYTES>, | ||
|
|
@@ -78,6 +86,9 @@ where | |
| [usize; N_ASSETS + 1]: Sized, | ||
| [usize; 2 * (1 + N_ASSETS)]: Sized, | ||
| { | ||
| /* | ||
| Build signer outside of the constructor and pass it in as a parameter. | ||
| */ | ||
|
There was a problem hiding this comment. I will handle this at #155 Refactor signers |
||
| pub fn new( | ||
| signer_key: &str, | ||
| chain_id: u64, | ||
|
|
@@ -104,6 +115,10 @@ where | |
| self.timestamp | ||
| } | ||
|
|
||
| /* | ||
| If I understand correctly, an error in submit_proof_of_solvency is propagated to the caller. | ||
| Is that correct? | ||
|
There was a problem hiding this comment. Yes, the try operator, "?", returns an Error when one occurs. |
||
| */ | ||
| pub async fn dispatch_solvency_proof(&mut self) -> Result<(), Box<dyn Error>> { | ||
| let proof: SolvencyProof = match self.snapshot.generate_proof_of_solvency() { | ||
| Ok(p) => p, | ||
|
|
@@ -202,6 +217,10 @@ where | |
| let circuit = | ||
| MstInclusionCircuit::<LEVELS, N_ASSETS, N_BYTES>::init(self.mst.clone(), user_index); | ||
|
|
||
| /* | ||
| Why can't we get the `calldata` using `gen_proof_solidity_calldata` similar to `generate_proof_of_solvency`? | ||
| */ | ||
|
There was a problem hiding this comment. We can use There was a problem hiding this comment. See comments above |
||
|
|
||
| // Currently, default manner of generating a inclusion proof for solidity-verifier. | ||
| let proof = gen_evm_proof_shplonk( | ||
| &self.trusted_setup[0].0, | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
That makes sense. There isn't any check procedure for the
Submit solvency prooftoo.FYI, The only reason for adding this checking step is due to the
requireterm in the contract:summa-solvency/contracts/src/Summa.sol
Lines 107 to 110 in ffd8259